Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,748
Erlang
35
GitHub Actions
29
Go
2,321
Maven
5,000+
npm
3,955
NuGet
712
pip
3,736
Pub
12
RubyGems
921
Rust
972
Swift
38
Unreviewed advisories
All unreviewed
5,000+

475 advisories

Loading
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-31198 was published May 30, 2025
Improper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Passwordless... Moderate Unreviewed
CVE-2025-2102 was published May 21, 2025
The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local... Moderate Unreviewed
CVE-2025-3908 was published May 19, 2025
Improper link resolution before file access ('link following') in Windows Installer allows an... Moderate Unreviewed
CVE-2025-29837 was published May 13, 2025
VMware Tools contains an insecure file handling vulnerability. A malicious actor with non... Moderate Unreviewed
CVE-2025-22247 was published May 12, 2025
A potential security vulnerability has been identified in the HP Touchpoint Analytics Service for... Moderate Unreviewed
CVE-2025-1697 was published Apr 18, 2025
Dell Trusted Device, versions prior to 7.0.3.0, contain an Improper Link Resolution Before File... Moderate Unreviewed
CVE-2025-29983 was published Apr 15, 2025
An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall... Moderate Unreviewed
CVE-2025-23010 was published Apr 10, 2025
Symlink following in the installer for some Zoom apps for macOS before version 6.1.5 may allow an... Moderate Unreviewed
CVE-2024-45418 was published Feb 25, 2025
A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac... Moderate Unreviewed
CVE-2020-3432 was published Feb 12, 2025
Windows Deployment Services Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21347 was published Feb 11, 2025
Azure Network Watcher VM Extension Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21188 was published Feb 11, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24103 was published Jan 28, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-24136 was published Jan 28, 2025
This issue was addressed with improved handling of symlinks. This issue is fixed in iPadOS 17.7.4... Moderate Unreviewed
CVE-2025-24104 was published Jan 28, 2025
Windows Event Tracing Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21274 was published Jan 14, 2025
Foxit PDF Reader Link Following Local Privilege Escalation Vulnerability. This vulnerability... Moderate Unreviewed
CVE-2024-12753 was published Dec 30, 2024
AnyDesk Link Following Information Disclosure Vulnerability. This vulnerability allows local... Moderate Unreviewed
CVE-2024-12754 was published Dec 30, 2024
Dell AppSync, version 4.6.0.x, contain a Symbolic Link (Symlink) Following vulnerability. A low... Moderate Unreviewed
CVE-2024-52542 was published Dec 17, 2024
gitingest before 9996a06 mishandles symbolic links that point outside of the base directory. Moderate Unreviewed
CVE-2024-56074 was published Dec 15, 2024
Dell Client Platform Firmware Update Utility contains an Improper Link Resolution vulnerability.... Moderate Unreviewed
CVE-2024-52537 was published Dec 11, 2024
A link following vulnerability has been reported to affect Qsync Central. If exploited, the... Moderate Unreviewed
CVE-2024-50404 was published Dec 6, 2024
Various problems in obs-scm-bridge allows attackers that create specially crafted git... Moderate Unreviewed
CVE-2024-22038 was published Nov 28, 2024
AVG AntiVirus Free icarus Arbitrary File Creation Denial of Service Vulnerability. This... Moderate Unreviewed
CVE-2024-7236 was published Nov 23, 2024
Avast Free Antivirus Link Following Denial-of-Service Vulnerability. This vulnerability allows... Moderate Unreviewed
CVE-2024-7228 was published Nov 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database